applications Archives

Winsage

February 11, 2026

Microsoft Announces Windows Baseline Security Mode and User Transparency and Consent

Microsoft has introduced two initiatives to enhance user trust in the Windows operating system: Windows Baseline Security Mode and User Transparency and Consent. These initiatives focus on transparency in app and AI agent behaviors, allowing users to reverse decisions and limiting access to defined capabilities. Windows Baseline Security Mode will enforce runtime integrity safeguards, permitting only properly signed apps, services, and drivers to run, while allowing users and IT administrators to override these safeguards if necessary. User Transparency and Consent will prompt users when apps attempt to access sensitive resources or install additional software, providing clear and actionable options for users to review and modify their choices. The rollout will occur in Windows 11 through a phased approach, with potential implementation in the Windows Insider Program by mid-year, possibly aligning with a future Windows 11 version or Windows 12 release.

Winsage

February 11, 2026

Patch Tuesday, February 2026 Edition

Microsoft has released updates addressing over 50 vulnerabilities in its Windows operating systems and applications, including six critical zero-day vulnerabilities. 1. CVE-2026-21510: A security feature bypass in Windows Shell that allows execution of malicious content via a single click on a link, affecting all supported Windows versions. 2. CVE-2026-21513: Targets MSHTML, the web browser engine in Windows. 3. CVE-2026-21514: A security feature bypass in Microsoft Word. 4. CVE-2026-21533: Allows local attackers to gain SYSTEM level access in Windows Remote Desktop Services. 5. CVE-2026-21519: An elevation of privilege flaw in the Desktop Window Manager (DWM). 6. CVE-2026-21525: A potential denial-of-service threat in the Windows Remote Access Connection Manager. Additionally, the updates include fixes for remote code execution vulnerabilities affecting GitHub Copilot and various IDEs, specifically CVE-2026-21516, CVE-2026-21523, and CVE-2026-21256, which arise from a command injection flaw. Security experts emphasize the importance of safeguarding developers due to their access to sensitive data and recommend applying least-privilege principles.

Winsage

February 11, 2026

Microsoft dials up the nagging in Windows, calls it security

Microsoft is introducing new security features for its Windows operating system, including "Windows Baseline Security Mode" and "User Transparency and Consent." The Baseline Security Mode will enforce runtime integrity safeguards by default, allowing only properly signed applications, services, and drivers to operate, with options for users to override these safeguards for legacy applications. The User Transparency and Consent feature will require explicit user consent for applications accessing sensitive resources, moving away from the current User Account Control prompts. Microsoft aims to enhance user security and privacy while providing clear and actionable notifications. CrowdStrike's Chief Technology Innovation Officer expressed support for this initiative, emphasizing the importance of user consent settings for security software effectiveness. Microsoft has a history of security initiatives, including the Secure Future Initiative, and plans to hold applications and AI tools to higher transparency standards. The rollout of these updates will occur in phases, although no specific timeline has been provided.

Tech Optimizer

February 11, 2026

Hackers Used Hugging Face to Distribute Android Banking Trojans

Cybersecurity researchers have identified a malware campaign that exploited Hugging Face's AI infrastructure to distribute Android banking trojans. The attackers used a deceptive app called TrustBastion, which tricked users into installing what appeared to be legitimate security software. Upon installation, the app redirected users to an encrypted endpoint that linked to Hugging Face repositories, allowing the malware to evade traditional security measures. The campaign generated new malware variants every 15 minutes, resulting in over 6,000 commits in about 29 days. It infected thousands of victims globally, particularly in regions with high smartphone banking usage but lower mobile security awareness. The operation is believed to be linked to an established cybercriminal group. Security experts warn that this incident highlights vulnerabilities in trusted platforms and calls for improved security measures, including behavioral analysis systems and verification of application authenticity. The incident has also sparked discussions about the need for enhanced security protocols for AI platforms.

Winsage

February 11, 2026

Microsoft tightens Windows security with app transparency and user consent

Microsoft is enhancing the security of its Windows operating system through two initiatives: User Transparency and Consent, and Windows Baseline Security Mode. The User Transparency and Consent initiative will notify users when applications request access to sensitive resources and log every permission granted, allowing users to review and modify their choices. Applications and AI agents will adhere to higher transparency standards. Windows Baseline Security Mode will enable runtime integrity safeguards by default, allowing only properly signed applications, services, and drivers to run. Users and IT administrators can approve exceptions for specific applications. These updates are part of Microsoft’s Secure Future Initiative, which aims to help organizations prevent, manage, and recover from security incidents. The rollout will occur in phases, with collaboration from developers, enterprises, and partners to ensure a smooth transition.

Winsage

February 11, 2026

Microsoft fixes six actively exploited flaws in latest Windows 11 update

Microsoft's February 2026 Patch Tuesday addressed 59 vulnerabilities in Windows 11, with six confirmed as actively exploited. The most critical vulnerability is CVE-2026-21510, a Windows Shell security feature bypass with a CVSS rating of 8.8, allowing attackers to evade warnings by tricking users into opening malicious files. Another significant vulnerability, CVE-2026-21513, also rated at 8.8, affects MSHTML and allows remote attackers to bypass execution prompts through malicious code in HTML or shortcut files. CVE-2026-21514 impacts Microsoft Word and enables adversaries to disable OLE mitigations, posing risks through document-based attacks. Two local privilege escalation vulnerabilities are CVE-2026-21519 in Desktop Window Manager and CVE-2026-21533 in Windows Remote Desktop Services, with CVSS scores of 7.8. CVE-2026-21525 is a denial-of-service vulnerability in Remote Access Connection Manager. The update includes 53 additional vulnerabilities across various Microsoft products and services, with CVE-2026-21531 in Azure SDK rated at 9.8 and CVE-2026-20841 affecting Windows Notepad rated at 8.8. The cumulative update for Windows 11 (KB5077181) also includes enhancements and resolves WPA3 Wi-Fi connectivity issues. Microsoft reminded users of the June 2026 expiration of Secure Boot certificates, which requires timely updates to ensure secure booting. Users can install the updates via Windows Update.

Winsage

February 11, 2026

This Microsoft Office 2021 and Windows 11 Pro bundle drops to under $50

A lifetime license for Microsoft Office Professional 2021, bundled with Windows 11 Pro, is available for .97, reduced from 9.99, valid until February 22 at 11:59 p.m. PT. The bundle includes Word, Excel, PowerPoint, Outlook, OneNote, Publisher, Access, and Teams, all as full desktop versions. Windows 11 Pro features include BitLocker encryption, Windows Sandbox, Hyper-V virtualization, and enhanced account controls, along with integration of Microsoft's AI assistant, Copilot. This offer is a one-time purchase and does not include ongoing feature updates or cloud storage. The hardware requirements are 4GB of RAM and 64GB of storage.

Tech Optimizer

February 11, 2026

How to Disable Windows 11 Defender: Temporary and Permanent

Microsoft Defender Antivirus is the built-in security solution for Windows 11, protecting against viruses, malware, and ransomware. Users may need to disable it temporarily or permanently for various reasons, including software installation, penetration testing, performance issues, transitioning to third-party antivirus solutions, or troubleshooting conflicts. Temporary disabling can be done through the Windows Security app, which will automatically re-enable after a restart. Permanent disabling requires changes in Group Policy, applicable only to Windows 11 Pro, Enterprise, and Education editions, and necessitates disabling Tamper Protection first. Another method for permanent disabling is installing a third-party antivirus, which automatically deactivates Defender's real-time protection. Windows 11 Home users cannot use Group Policy for permanent disabling but can still temporarily disable Defender or install a third-party antivirus. Disabling Defender exposes the system to threats, and users should ensure they have alternative protection in place. Major Windows updates may reset Defender settings, and caution is advised when modifying system settings.

AppWizard

February 10, 2026

Verum Messenger Launches Offline Architecture for True Digital Sovereignty

The “People as the Network” architecture is the technical backbone of Verum Messenger’s Offline Mode, which launched on February 2, 2026. It shifts from a Centralized Cloud model to a Decentralized Mesh Network. The system utilizes local hardware, including Bluetooth Low Energy (BLE) and Wi-Fi Direct, allowing devices to connect within a 100-meter range. Messages can "hop" from one device to another to reach recipients beyond direct range, forming an ad-hoc network without a master controller. Local Encryption ensures privacy, as encryption keys are stored on user devices, keeping messages secure during transmission. This architecture is particularly useful in network blackouts, censorship zones, and dense crowds. However, its effectiveness is limited in remote areas with sparse users, where communication relies on the signal strength of individual devices.

AppWizard

February 10, 2026

Russia: “Slowing down” of Telegram messaging app another blow for freedom of expression

Russian authorities imposed significant slowdowns on the Telegram messenger service, prompting concerns from Marie Struthers, Amnesty International's Eastern Europe and Central Asia Director. She argued that these actions restrict free communication rather than protect against online crime. Struthers noted a trend of increased state control over online communications in Russia, leading users to seek circumvention tools or less secure alternatives. On February 10, restrictions on access to Telegram were initiated by Roskomnadzor, resulting in widespread disruptions. In August 2025, Roskomnadzor limited voice and video calls on Telegram and WhatsApp due to their alleged use in criminal activities, followed by partial restrictions on these platforms. Other messaging services, such as Signal and Viber, have also been blocked. Additionally, Russian authorities promoted the domestically developed MAX messenger, raising concerns among human rights groups regarding its security and privacy.